$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133362e302f32342d3234203d3e2034333832.roa File: 3230322e39332e3133362e302f32342d3234203d3e2034333832.roa (raw, json) Hash identifier: uZGMmLO+ihx1HauuMCEhDeKUaoZ9Cej3WyjpZuP5mxw= Subject key identifier: 38:AA:8B:AF:FD:8F:23:74:1B:0E:57:49:E6:DD:2A:64:BB:76:76:5B Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 54D892E2D7636681B01C1080707B1912808932AD Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133362e302f32342d3234203d3e2034333832.roa Signing time: Wed 23 Jul 2025 15:00:42 +0000 ROA not before: Wed 23 Jul 2025 14:55:42 +0000 ROA not after: Wed 22 Jul 2026 15:00:42 +0000 asID: 4382 IP address blocks: 202.93.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 09:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:d8:92:e2:d7:63:66:81:b0:1c:10:80:70:7b:19:12:80:89:32:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Jul 23 14:55:42 2025 GMT Not After : Jul 22 15:00:42 2026 GMT Subject: CN=38AA8BAFFD8F23741B0E5749E6DD2A64BB76765B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1a:0e:38:8b:c5:16:cd:72:6e:4a:33:d4:90: 28:b2:03:db:c6:f0:09:9d:98:19:7b:03:00:74:0d: d7:80:78:98:b8:c5:c4:4b:d6:14:e6:ec:03:da:78: db:5d:a3:5f:7f:9a:ff:ef:5c:83:48:94:99:20:87: ed:16:88:a5:3c:eb:7c:0f:55:b4:74:73:95:69:f1: e8:ed:75:9d:96:fb:dc:3b:1a:07:51:df:0f:54:ad: e1:46:f0:de:06:3e:38:0b:8b:b7:6b:a6:bc:15:0c: 0b:68:90:ee:26:98:bd:b6:07:20:9c:d8:87:5e:58: e0:fd:eb:4b:69:3c:e0:64:32:ef:21:72:cb:a1:08: f7:b8:5f:23:5c:1d:3f:fd:60:2c:b2:ea:fa:35:44: ce:e2:15:b7:37:3a:0b:ec:2e:1a:62:56:f9:3d:40: da:a4:80:cb:db:bb:a2:17:62:10:c6:8b:ea:7b:dc: 7e:59:80:0e:6e:93:f2:2b:c9:dc:35:7f:22:a8:d8: e5:37:0a:2b:e4:b3:43:85:97:c7:b7:e8:74:6a:39: 40:94:c3:a3:b8:dc:9f:4d:da:37:cb:b8:69:25:4b: 83:06:88:9e:4b:14:b8:4f:d4:ef:93:f6:31:d7:2b: 73:2c:0a:1b:b0:1e:74:f7:c2:3b:7d:e2:0b:c2:5c: f6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:AA:8B:AF:FD:8F:23:74:1B:0E:57:49:E6:DD:2A:64:BB:76:76:5B X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133362e302f32342d3234203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.136.0/24 Signature Algorithm: sha256WithRSAEncryption 89:03:19:15:22:02:59:22:5e:42:83:45:d0:30:83:73:64:b7: c1:07:bf:68:e2:b0:47:1c:d1:59:48:7a:af:99:2a:3d:ec:52: d0:7e:09:14:a8:b6:cd:45:e0:5d:6d:b2:6c:a1:a5:47:4f:ef: 5b:27:f8:dd:53:e9:ad:71:80:be:1c:86:f9:e7:73:26:94:ce: 67:21:ff:09:fe:04:d3:9e:b4:71:cd:86:4f:70:e5:f6:3f:32: a9:c8:38:1c:57:30:9d:67:ff:3d:eb:83:22:59:3b:16:fb:dc: c9:bd:b3:b3:06:8c:8a:37:7c:82:78:59:48:d7:4f:41:5c:76: 0b:f0:c8:52:41:f2:19:3d:cb:5d:c6:2b:23:25:26:a5:0a:97: f9:da:54:e1:40:a5:c8:a8:8b:8a:28:38:a0:5e:4f:da:36:12: b5:5d:e6:ba:32:0c:85:4c:e8:77:63:86:ee:ae:7d:14:ea:ca: c5:84:8a:58:44:e4:16:23:73:06:78:be:d2:01:f2:a6:a1:ae: cf:da:13:3f:1f:af:21:1d:d3:74:31:d4:53:63:c9:52:6a:d2: c3:3d:f8:a6:9e:f5:6c:9f:18:e0:1d:11:0a:59:3e:2c:70:d5: 06:34:7b:e1:90:42:63:e9:ff:68:9c:8e:4a:ef:6a:32:0d:e7: f4:17:38:16 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUVNiS4tdjZoGwHBCAcHsZEoCJMq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yNTA3MjMxNDU1NDJaFw0yNjA3MjIxNTAwNDJaMDMxMTAvBgNV BAMTKDM4QUE4QkFGRkQ4RjIzNzQxQjBFNTc0OUU2REQyQTY0QkI3Njc2NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJGg44i8UWzXJuSjPUkCiyA9vG 8AmdmBl7AwB0DdeAeJi4xcRL1hTm7APaeNtdo19/mv/vXINIlJkgh+0WiKU863wP VbR0c5Vp8ejtdZ2W+9w7GgdR3w9UreFG8N4GPjgLi7drprwVDAtokO4mmL22ByCc 2IdeWOD960tpPOBkMu8hcsuhCPe4XyNcHT/9YCyy6vo1RM7iFbc3OgvsLhpiVvk9 QNqkgMvbu6IXYhDGi+p73H5ZgA5uk/Irydw1fyKo2OU3Civks0OFl8e36HRqOUCU w6O43J9N2jfLuGklS4MGiJ5LFLhP1O+T9jHXK3MsChuwHnT3wjt94gvCXPYVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUOKqLr/2PI3QbDldJ5t0qZLt2dlswHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMyMzAzMjJlMzkzMzJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXYgwDQYJKoZIhvcN AQELBQADggEBAIkDGRUiAlkiXkKDRdAwg3Nkt8EHv2jisEcc0VlIeq+ZKj3sUtB+ CRSots1F4F1tsmyhpUdP71sn+N1T6a1xgL4chvnncyaUzmch/wn+BNOetHHNhk9w 5fY/MqnIOBxXMJ1n/z3rgyJZOxb73Mm9s7MGjIo3fIJ4WUjXT0FcdgvwyFJB8hk9 y13GKyMlJqUKl/naVOFApcioi4ooOKBeT9o2ErVd5royDIVM6Hdjhu6ufRTqysWE ilhE5BYjcwZ4vtIB8qahrs/aEz8fryEd03Qx1FNjyVJq0sM9+Kae9WyfGOAdEQpZ Pixw1QY0e+GQQmPp/2icjkrvajIN5/QXOBY= -----END CERTIFICATE-----Generated at Sat Aug 9 20:52:15 2025 by rpki-client